palo alto networks cortex
April 24, 2024 · View on GitHub
Expression
product = palo alto networks cortex
Fields
There are no fields for this extension.
Activity Types
| Activity Type | Field | Status | Core | Detection | Informational |
|---|---|---|---|---|---|
| alert-trigger | src_ip | Legacy | ✓ | ✓ | |
| additional_info | |||||
| process_name | Legacy | ✓ | |||
| alert_id | Legacy | ✓ | |||
| local_user_name | |||||
| dest_host | Legacy | ✓ | |||
| malware_url | |||||
| src_host | Legacy | ✓ | ✓ | ||
| user | Legacy | ✓ |